Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS215238.roa
File: AS215238.roa (raw, json)
Hash identifier: 5eAo8IgHJR75dAjKfci1EV131ZL9w7OCFTcuwrO2RM0=
Subject key identifier: F0:51:32:E3:47:90:90:64:3A:BD:04:45:12:7E:8E:1F:2F:D0:5E:B0
Certificate issuer: /CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Certificate serial: 69C34517D3A867F7E503C7010488734A8B1DEA44
Authority key identifier: 03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS215238.roa
Signing time: Thu 30 May 2024 16:21:53 +0000
ROA not before: Thu 30 May 2024 16:16:53 +0000
ROA not after: Thu 29 May 2025 16:21:53 +0000
asID: 215238
IP address blocks: 45.157.16.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 01 Oct 2024 00:18:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:c3:45:17:d3:a8:67:f7:e5:03:c7:01:04:88:73:4a:8b:1d:ea:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Validity
Not Before: May 30 16:16:53 2024 GMT
Not After : May 29 16:21:53 2025 GMT
Subject: CN=F05132E3479090643ABD0445127E8E1F2FD05EB0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:45:e8:4c:c5:86:11:9a:e9:47:0f:d2:2b:61:
ed:fb:59:7e:f6:7f:a4:f5:5e:72:ce:51:cc:60:ac:
5a:84:aa:f1:63:ca:56:80:7c:b7:7e:2c:d0:05:7e:
a9:c7:e4:7e:f0:66:e9:27:be:87:3f:f4:f4:db:39:
cb:dc:04:75:4f:aa:43:e9:f6:2f:31:5e:44:39:6a:
ce:44:68:5c:4d:41:64:02:c2:c3:cd:4d:a2:7e:15:
d9:53:fa:90:eb:8d:1a:04:ca:35:cd:6b:f0:58:3d:
eb:19:c7:b5:ea:72:89:ae:bf:13:cf:21:4d:b5:cb:
f5:da:2b:d1:4b:d5:75:44:a1:04:23:b0:49:27:1a:
11:e9:b3:5c:04:cc:f6:bd:70:ac:d1:a6:b6:d3:80:
04:2a:9f:35:68:c7:ee:9f:c2:6e:de:7f:2a:41:b7:
6b:1d:90:6c:3b:c6:22:2c:74:72:29:d7:40:48:a2:
4a:0f:97:d3:a9:9b:fa:ee:c6:1c:58:25:88:84:38:
a6:e2:ba:0c:7c:f9:5a:23:0f:4c:cc:4d:e4:28:6d:
dd:46:36:e3:82:58:1a:f8:0c:24:d2:57:86:c7:d0:
2e:7c:7f:f8:9b:76:3f:29:40:d1:e1:26:fa:6b:19:
ba:34:c0:b1:6c:d3:ab:75:5d:1a:07:c5:0c:ba:60:
8a:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:51:32:E3:47:90:90:64:3A:BD:04:45:12:7E:8E:1F:2F:D0:5E:B0
X509v3 Authority Key Identifier:
keyid:03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS215238.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.16.0/24
Signature Algorithm: sha256WithRSAEncryption
34:69:7d:de:5b:e5:a2:b7:82:f9:f7:ab:93:43:ae:e8:78:99:
ae:53:22:25:4c:9c:f0:3e:e6:a4:88:24:f6:a4:24:41:7f:cb:
c6:2f:1e:d4:63:aa:88:9a:72:59:cf:9a:0c:6b:d0:0f:33:6d:
b2:f5:44:b8:ba:49:c6:6d:1a:23:d7:24:4a:4c:62:0c:bf:39:
c7:67:0f:10:ae:eb:9d:e1:3b:16:ce:f0:dd:99:4b:3b:d9:f7:
31:ba:4d:4b:bc:8f:06:3d:09:53:88:a2:0a:23:48:7b:2f:c1:
ca:06:ba:60:15:fe:18:40:89:ec:b9:fb:7f:58:3c:9b:88:31:
45:f4:ed:49:4c:3c:e4:f4:db:8a:61:b0:06:23:86:ec:60:9f:
c2:27:7f:bd:ad:cd:66:8b:db:0f:5e:bf:16:12:b9:b6:8c:ec:
26:be:53:48:69:ea:10:0e:e4:3c:58:30:1c:71:23:f5:47:14:
2a:25:f9:08:a2:b0:28:a8:71:e7:14:1f:1a:94:b7:61:3e:55:
6e:43:a5:e3:38:1e:2a:4d:9a:fd:ea:5c:35:07:20:23:4e:24:
01:fa:df:f8:63:4b:8f:83:22:33:77:19:61:68:ba:fc:b3:c0:
d5:05:8f:a8:e3:0f:d1:84:fb:d1:23:7a:67:4b:d6:fa:cc:61:
a1:a1:ff:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 1 03:02:57 2024 by rpki-client on console-ams.rpki-client.org